SSL-Tools

SSL check results of gijsberts.me

NEW You can also bulk check multiple servers.

Discover if the webservers of gijsberts.me can be reached through a secure connection.

Summary

JSON Refresh

Report created Wed, 18 Nov 2020 16:38:48 +0000

We can not guarantee a secure connection to the webserver of gijsberts.me!

Please contact the operator of gijsberts.me and inform him of this problem. This result stays accessible under the following address:

/webservers/gijsberts.me

Servers

Hostname / IP address Certificates Protocol
gijsberts.me
37.97.233.40
 thomasgijsberts.com
HSTS
unexpected EOF
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
gijsberts.me
2a01:7c8:fffd:fe::1
Results incomplete
not checked
HSTS
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s

Certificates

First seen at:

CN=thomasgijsberts.com

Certificate chain
Subject
Common Name (CN)
  • thomasgijsberts.com
Alternative Names
  • blog.thomasgijsberts.com
  • thomasgijsberts.com
  • www.thomasgijsberts.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-11-18
Not valid after
2021-02-16
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C8:07:F2:67:AD:7B:4C:7E:1D:8B:4B:12:02:97:C8:90:E6:14:A8:43:60:06:A8:FB:E2:FF:CB:EE:DB:10:94:08
SHA1
5B:06:FD:D1:3D:D1:87:FC:A0:D5:CE:16:ED:D2:9C:F8:83:2C:86:03
X509v3 extensions
subjectKeyIdentifier
  • AF:6C:37:9F:83:72:38:77:D6:AF:0D:6B:59:C1:59:9A:1B:E2:B3:57
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Nov 18 11:57:57.679 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F5:BF:07:C0:B4:CE:20:CF:23:3A:94:
  • 87:0B:75:4C:1E:67:92:0C:9B:56:4E:13:49:44:6C:C0:
  • C5:28:49:95:02:02:20:6B:E1:77:A7:2B:26:0E:6A:99:
  • 3A:82:25:CA:0E:6C:EA:38:2A:C2:3B:4B:B0:34:FA:D4:
  • 51:42:B3:20:A9:D2:D7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Nov 18 11:57:57.684 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:BC:39:AE:81:E0:96:F8:A0:C4:AB:1B:
  • 47:B7:92:BE:19:22:2B:1C:F0:62:F0:EC:48:6E:FB:15:
  • 94:B2:D7:9F:5E:02:21:00:B6:D9:62:DF:1E:E9:92:E4:
  • F8:6C:B2:B2:C7:0E:60:24:30:DC:5C:A3:66:7C:8C:86:
  • AE:8B:69:1D:25:22:D5:8E

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_443._tcp.gijsberts.me
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid